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CLAIMS 



1. A method of recording transmitted digital data in which transmitted digital 
information is encrypted by a recording encryption key (E(NE)) and stored by a 
5 recording means ^ (50) on a recording support medium and characterised in that an 
equivalent of the recording encryption key (E(NE)) is encrypted by a recording 
transport key (RT(A)) and stored on the support medium together with the encrypted 
information. 

10 2. A method as claimed in claim 1 in which the information encrypted by the 
recording encryption key (E(NE)) comprises control word information (CW) usable 
to descramble a scrambled data transmission also recorded on the support medium. 

3 . A method as claimed in claim 1 -or- 2 * in which the recording encryption key 
15 (E(NE)) and/or recording transport key (RT(A)) are stored on a portable security 

module *{62f' associated with the recording means ^SQf: 

4. A method as claimed in -any preceding claim in which the transmitted information 
is encrypted prior to transmission and received by a decoder means before being 

20 communicated to the recording means-(56^. 

5. A method as claimed in claim 4 in which the decoder ^30^ is associated with a 
portable security module-^©)* used to store transmission access control keys (KO(NS), 
K0'(Opl,NS) etc.) used to decrypt the transmitted encrypted information. 

25 

6. A method as claimed in claim 5 in which the recording encryption key (E(NE)) 
and/ or recording transport key (RT(A)) function in accordance with a first encryption 
algorithm (DES) and the transmission access control keys (KO(NS), KO'(Opl.NS) 
etc.) function in accordance with a second encryption algorithm (CA). 

30 c\oart i 

7; A method as claimed in tmy preceding claim in which the recordmg transport key 
(RT(A)) is generated at a central recording authorisation unit (21,2 4 ,25) and a copy 
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of this key communicated to the recording means i5 Q) ' . 

8. A method as claimed in claim 7 in which the recording transport key (RT(A)) is 
preferably encrypted by a further encryption key (KO(NSIM)) prior to being 
communicated to the recording means -{50)-. 

claim i 

9. A method as claimed in -any preceding claim in which a central access control 

A 

system - <21,24 t 25) r communicates transmission access control keys (KO(NS), 
K(T(Opl,NS) etc) to the recording means - (50) r 

10. A method as claimed in claim 9 in which the transmission access control keys 
(KO(NS), K0'(Opl,NS) etc.) are communicated to a portable security module-f52)* 
associated with the recording means -(50)*. 



15 1 1 . A method as claimed in claim 9 «er 10 in which the recording means-(§0)*directiy 
descrambles transmitted information using the transmission access keys (K0(NS), 
K0'(Opl,NS) etc.) prior to re-encryption of the information by the recording 
encryption key (E(NE)) and storage on the support medium. 

20 12. A method as claimed in- any of - claims 9, 10 or 11 m which the central access 

A 

control system - (21, 2 4 , 25) preferably encrypts the broadcast access control keys 
(K0(NS), K0'(Opl,NS) etc.) by a further encryption key (KO(NSIM)) prior to their 
communication to the recording means - iSOf . 

Clctfrvl Q 

25 13. A method as claimed in» an^ of claims 9 to 1 3 in which the recording means«f50)- 
sends a request to the central access control system including information identifying 
the broadcast access keys needed (K0(NS), K0'(Opl,NS) etc.), the request being 
authentified by the recording means using a key (KO(NSIM)) unique to that 
recording means. 



30 



14. A method as claimed in claim 1 using a decoder means-(42$ and associated 
security module-^^e) and a recording means and associated security module i$&r 
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and in which a copy of the recording transport key (RT(A)) is stored in the security 
module -(30)* associated with the decoder means -£45)*and/or the security module -f§2} 
associated with the recording means. 

15. A method as claimed in claim 14 in which the recording transport key (RT(A)) 
is generated by either the recording security modul o^S^ or decoder security module 

*f30^and communicated to the other security module. 

16. A method as claimed in claim 15 in which the recording transport key (RT(A)) 
is preferably encrypted before communication to the other security module and 
decrypted by a key unique (KO(NS)) to that other security module. 

17. A method as claimed in claim 16 in which the decoder security modul c - (30 fr and 
recording security module (52) carry out a mutual authorisation process, the unique 
decryption key (KO(NS)) being passed to the other security module from the 
encrypting security module depending on the results of the mutual authorisation. 

18. A method as claimed in claim 17 in which the mutual authorisation step is 
carried out using, inter alia, an audience key K1(C) known to both security modules 
(30,52). 

(tlfXirn I ^ 

19. A method as claimed in - any of elaim3 14 *o-tfr in which the decoder security 
module^ae^possesses transmission access control keys (KO(NS), K0'(Opl,NS) etc.) 
to decrypt the transmitted information in an encrypted form and a session key 
(K3(NSIM)) re-encrypt the information prior to communication to the recording 
security modul o ( 52 f, the recording security module-f52)- possessing an equivalent of 
the session key (K3(NSIM)) to decrypt the information prior to encryption by the 
recording transport key (RT(A)). 



20. A method as claimed in claim 19 in which the session key (K3(NSIM)) is 
generated by the decoder security . module or recording means security module -(52)- 
and communicated to the other module in encrypted form using an encryption key 
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(KO(NS)) uniquely decry ptable by the other security module. 



21. A recording means -(§0) adapted for use in a method as claimed in»a n y pr ec e ding 
claiB fr comprising a security module«(§2) for encrypting transmitted digital information 
by a recording encryption key (E(NE)) for storage on a recording support medium 
and characterised in that the security module is further adapted to encrypt the 
recording encryption key (E(NE)) by a recording transport key (RT(A)) for storage 
on the support medium. 

i 

22. A portable security module« (52j r adapted for use in the recording means of claim 
21 and characterised in comprising a recording encryption key (E(NE)) for encryption 
of transmitted digital information for subsequent recordal and a recording transport 
key (RT(A)) for encryption of the recording encryption key for subsequent recordal. 



23. A decoder means -^39)* adapted for use in a method as claimed in any of claims 
-14 to 20 including a security module -(3©)- adapted to store a copy of the recording 
transport key (RT(A)). 

24. A decoder means -(39f as claimed in claim 23 including a security module- <30) 
adapted to descramble transmitted information using one or more transmission access 
keys (KO(NS), K(r(Op,NS) etc.) prior to reencryption by a session key (K3(NSIM)) 
for subsequent communication to a recording means. 

25. A portable security module-(30)"adapted for use in the decoder means -(20) ~of 
claim 23-©rf4 and comprising at least a copy of the recording transport key (RT(A)). 

^26, A method of recording transmitted digital data substantially as herein 
describecf>^ /*~\ 
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27. A recording means stib^tantiall; 




herein described. 



28. 



A portable security module substantially*^ herein described. 
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29. A^aecsaer- mcano sub c tantMly ^S-herein described. 
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